Axis Communications AXIS StorPoint CD

CPE Details

Axis Communications AXIS StorPoint CD
axis
storpoint_cd
-
2007-08-23
19h05 +00:00
2008-04-01
12h37 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:h:axis:storpoint_cd:-:*:*:*:*:*:*:*

Informations

Vendor

axis

Product

storpoint_cd

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2004-2425 2005-08-18 02h00 +00:00 Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to execute arbitrary commands via accent (`) and possibly other shell metacharacters in the query string to virtualinput.cgi.
7.5
CVE-2004-2426 2005-08-18 02h00 +00:00 Directory traversal vulnerability in Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to bypass authentication via a .. (dot dot) in an HTTP POST request to ServerManager.srv, then use these privileges to conduct other activities, such as modifying files using editcgi.cgi.
5
CVE-2004-2427 2005-08-18 02h00 +00:00 Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to obtain sensitive information via direct requests to (1) admin/getparam.cgi, (2) admin/systemlog.cgi, (3) admin/serverreport.cgi, and (4) admin/paramlist.cgi, modify system information via (5) setparam.cgi and (6) factorydefault.cgi, or (7) cause a denial of service (reboot) via restart.cgi.
10
CVE-2000-0191 2000-10-13 02h00 +00:00 Axis StorPoint CD allows remote attackers to access administrator URLs without authentication via a .. (dot dot) attack.
10